Weaknesses of type CWE-352
5,723 resultsCVE-2024-39153MEDIUMidccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/info_deal.php?mudi=del&dataType=news&datEPSS 0.2%CVE-2023-51402MEDIUMWordPress Ultimate Addons for WPBakery Page Builder Plugin <= 3.19.17 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-51686MEDIUMWordPress Manage User Columns plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-27948MEDIUMWordPress Atahualpa Theme <= 3.7.24 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2026-11020MEDIUMInappropriate implementation in Extensions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via aEPSS 0.2%CVE-2023-39311HIGHWordPress Avada Builder plugin <= 3.11.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-52415HIGHWordPress SK WP Settings Backup plugin <= 1.0 - CSRF to PHP Object Injection vulnerabilityEPSS 0.2%CVE-2023-39372HIGH StarTrinity Softswitch version 2023-02-16 - multiple CSRF (CWE-352)EPSS 0.2%CVE-2023-44233MEDIUMWordPress FooGallery Plugin <= 2.2.44 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-44999MEDIUMWordPress WooCommerce Stripe Gateway plugin <= 7.6.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2025-6341MEDIUMcode-projects School Fees Payment System cross-site request forgeryEPSS 0.2%CVE-2023-50878MEDIUMWordPress MStore API Plugin <= 4.10.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-39989MEDIUMWordPress Header Footer Code Manager Plugin <= 1.1.34 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2024-31378MEDIUMWordPress MailChimp Forms by MailMunch plugin <= 3.2.1 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-31238MEDIUMWordPress Smart Online Order for Clover plugin <= 1.5.5 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2024-31301MEDIUMWordPress Multiple Page Generator Plugin – MPG plugin <= 3.4.0 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-51486MEDIUMWordPress WooCommerce PDF Invoice Builder, Create invoices, packing slips and more plugin <= 1.2.101 - Cross Site Request Forgery (CSRF) vulnerabilityEPSS 0.2%CVE-2023-35880MEDIUMWordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2023-6501MEDIUMSplashscreen <= 0.20 - Settings Update via CSRFEPSS 0.2%CVE-2023-44470MEDIUMWordPress Kv TinyMCE Editor Add Fonts Plugin <= 1.1 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%